Checklist for a GDPR-compliant website

Globalization and the increasing evolution of new technologies have created new challenges in the protection of personal data. Both private and public sector actors increasingly use the personal data of individuals in the course of their activities. These developments require a specific protection framework. The General Regulations on the Protection of Personal Data (RGPD) tend to establish this new framework. Most companies have a website through which they sell their products, their services or inform their customers and prospects about Israel Email List their activities. It is therefore essential that their website complies with the principles resulting from the regulation. How to ensure that your website complies with the General Regulations on the Protection of Personal Data (RGPD)? Here are some answers:

The security of my website is on a secure “HTTPS” network Access to the back-office of the site is limited to only those who are expressly authorized to do so. My host and my developer are in compliance with the regulations Access to website functionalities by users are via a complex password Personal data collected on the website is stored securely My content management system (CMS) complies with the regulations The forms I have identified all the forms on my site that collect personal data I updated each of the forms I added empty boxes to check under each of the forms for which there is a plurality of proposed purposes I have informed, by a text.

A redirect link to the data management policy

For the purpose of the processing, I have implemented solutions for the exercise of the rights of data subjects, such as a contact address dedicated to these requests (management of requests for access rights, portability, deletion, modification, etc.) 3. Tags and cookies I have listed the cookies and tags used on my website I have set the storage period for cookies at 13 months maximum, in accordance with the law I have implemented a consent collection solution for cookies, tags, and advertising I modified the cookies welcome banner with an “accept” button I modified the cookies welcome banner with a “refuse” button or a link redirecting to a preferences management page I informed users about the interest and usefulness of tags and cookies 4. The e-mailing I know the recipients of my emails and newsletters,

I can identify them precisely I have set up procedures for collecting consent in accordance with the regulations I have saved this consent in a valid form and can find it at any time (date, details) I allow you to refuse to email via unsubscribe links included directly in emails After three years, I again seek the consent of the person concerned I regularly update my contact lists (archiving of unsubscribed people …) 5. Analytics I have taken note of the new General Conditions of Use (T & Cs) of Analytics I limit the retention period of the information collected I limit access to Google Analytics data I have informed my users that I use this service I allow users to configure Analytics tracking

The privacy policy I have created a page dedicated to the privacy policy

Of personal data I have listed all the cookies, tracers, tags used on the site and I have informed the users of their operation I have listed the different treatments and their purposes A link to the said page is accessible on all pages of the website I allow the exercise of the rights of data subjects I offer unsubscription possibilities I updated my cookie banner I added a redirect link to said page under all contact forms Your website is one of your showcases, so you shouldn’t neglect it. These few measures, which are not exhaustive, can serve as a guide to start bringing your website into compliance with the General Regulations on the Protection of Personal Data.

Compliance with the regulations should not be seen as a constraint but as a functional and marketing opportunity. On the one hand, you will optimize the use of the data collected on your site, on the other hand, the users of your website will be reassured by your investment and will be more inclined to browse your pages. If you liked this article, don’t hesitate to read our white paper on the legal aspects of lead generation. For more information on our services, we invite you to contact our teams.

Leave a Reply

Your email address will not be published.